Cybersecurity Attorney
Company: Booz Allen Hamilton
Location: Mc Lean
Posted on: April 1, 2026
|
|
|
Job Description:
Cybersecurity Attorney The Opportunity: Bring your cybersecurity
and data protection expertise to a role that helps protect Booz
Allen’s people, clients, and mission while enabling innovation at
enterprise scale. At Booz Allen, you’ll join a team of experienced
professionals motivated to excel and realize values-driven change
for our clients, colleagues, and communities. We bring bold
thinking to complex challenges across analytics and artifi cia l
intelligence, cyber, digital solutions, engineering, and consult
ing, and with industries ranging from defense and national security
to health, energy to international development. As a member of our
Data Privacy, AI, and Cybersecurity legal team, you’ll help propel
our forward-thinking and purpose-driven team as we advance our
clients’ missions and protect our internal operations. As
Cybersecurity Counsel, you will have direct responsibility for
legal matters related to Booz Allen’s cybersecurity and data
protection program and activities. You will advise Booz Allen and
its businesses on all aspects of cybersecurity law, focusing on
compliance, policy , incident response, tra nsa ctions and
contracts. In this role, you will provide day-to-day legal support
to the Chief Information Office ( CIO ) and Enterprise
Cybersecurity ( ECS ) team and advise on processes and controls to
ensure compliance with applicable laws, regulations, and contract
requirements. You’ll help shape governance, advise during incident
response and investigations, and negotiate data security terms that
align with evolving laws, regulations, and contractual obligations,
espe cia lly those relevant to federal contracting environments.
This position is located in McLean, VA. Due to the nature of work
performed within this facility, U.S. citizen ship is required .
Work with us as we empower the future. What You'll Work On: Serve
as t rus ted counsel to leaders on compliance strategy, policies or
standards, and risk-based decision making across the enterprise.
Advise on incident response and cyber events, including escalation
decisions, investigations, notifications or reporting
considerations, and post-incident remediation activities. Guide
government-contracting cybersecurity obligations such as FAR DFARS
and agency supplements, including flow-down considerations and
alignment to recognized frameworks such as NIST, CMMC, FedRAMP, or
ISO. Partner cross-functionally with Security, Privacy, Compliance,
Procurement, Risk, and business teams to translate complex
requirements into practical, durable controls and playbooks.
Support enterprise initiatives such as audits or assessments, cyber
risk mitigation planning, third-party risk, and cyber insurance-
related legal matters. Counsel on contractual cybersecurity
requirements and risk allocation, including reviewing, drafting,
and negotiating data security and privacy terms with customers,
vendors, and partners. Join us. The world can’t wait. You Have: 5
years of experience practicing cybersecurity law in a law firm or
corporate environment Experience with U.S. and global cybersecurity
requirements and data protection laws applicable to publicly traded
companies that perform work for government and commer cia l
customers Experience providing legal and strategic advice on
cybersecurity and data protection issues, including current and
evolving regulatory and contractual obligations, incident response,
cybersecurity- related investigations, audits, cyber risk
identification and mitigation efforts, and cybersecurity insurance
matters Experience advising on contractual requirements and
drafting and negotiating data security terms in contracts with
customers, vendors, and business partners Experience collaborating
with cross-functional teams to evaluate risks and root causes and
to aid in designing and implementing practical mitigation
strategies or action plans Experience working under pressure,
managing multiple complex matters simultaneously, and meeting
deadlines in a fast-paced environment Knowledge of cybersecurity
aspects of U.S. government acquisition regulations such as FAR,
DFARS, or HSAR and security certifications and frameworks such as
CMMC, ISO, FedRAMP, and NIST Ability to listen actively to ensure
that the right questions are being asked and answered, translate
legalese or regulations into succinct, clear, and workable business
solutions, execute against clear goals, priorities, and success met
rics or KPIs, and manage against program plans J.D. degree Active
bar admission with any U.S. state bar or the District of Columbia
Nice If You Have: Experience providing advice on procedures and
processes relating to data governance, cloud- related issues and
governance, and other areas of emerging technology Experience
advising on processes and procedures related to artifi cia l
intelligence governance and privacy laws Experience implementing
cybersecurity compliance, including training, communications, risk
assessments, audits, concern reporting, and investigations
Experience advising on cybersecurity aspects of mergers,
acquisitions, and other tra nsa ctions Experience collaborating
with cross-functional teams to provide integrated and durable
solutions Compensation At Booz Allen, we celebrate your
contributions, provide you with opportunities and choices, and
support your total well-being. Our offerings include health, life,
disability, financial, and retirement benefits, as well as paid
leave, professional development, tuition assistance, work-life
programs, and dependent care. Our recognition awards program
acknowledges employees for exceptional performance and superior
demonstration of our values. Full-time and part-time employees
working at least 20 hours a week on a regular basis are eligible to
participate in Booz Allen’s benefit programs. Individuals that do
not meet the threshold are only eligible for select offerings, not
inclusive of health benefits. We encourage you to learn more about
our total benefits by visiting the Resource page on our Careers
site and reviewing Our Employee Benefits page. Salary at Booz Allen
is determined by various factors, including but not limited to
location, the individual’s particular combination of education,
knowledge, skills, competencies, and experience, as well as
contract-specific affordability and organizational requirements.
The projected compensation range for this position is $128,700.00
to $292,000.00 (annualized USD). The estimate displayed represents
the typical salary range for this position and is just one
component of Booz Allen’s total compensation package for employees.
This posting will close within 90 days from the Posting Date.
Identity Statement As part of the hiring process, we will ask you
to complete an identity verification process that leverages
advanced biometrics and artificial intelligence to ensure
authenticity and protect against identity fraud. You are expected
to be on camera during interviews and assessments. We reserve the
right to take your picture to verify your identity and prevent
fraud. Candidate AI Usage Policy AI is a part of our daily work at
Booz Allen, and we are committed to the responsible and ethical use
of AI tools. However, we want to ensure a fair candidate process
based on your own skills and knowledge. As part of this commitment,
the use of artificial intelligence (AI) or other tools to assist
with responses during interviews (whether in-person or virtual) is
prohibited unless permission is explicitly provided . Work Model
Our people-first culture prioritizes the benefits of collaboration,
whether it occurs in person or virtually. To support engagement and
effective communication, employees working virtually are generally
expected to have their cameras on during meetings. Remote : If this
position is listed as remote, there may still be occasions when you
are required to work in person at a Booz Allen or customer
facility. Hybrid : If this position is listed as hybrid, you will
be expected to work from a Booz Allen facility frequently, in
alignment with leadership expectations and the needs of the role.
You may also be required to work from or visit a customer facility.
Onsite : If this position is listed as onsite, work will primarily
be performed at a Booz Allen office or customer facility, where
employees will collaborate directly with colleagues and customers
as required by the role. Commitment to Non-Discrimination All
qualified applicants will receive consideration for employment
without regard to disability, status as a protected veteran or any
other status protected by applicable federal, state, local, or
international law.
Keywords: Booz Allen Hamilton, Germantown , Cybersecurity Attorney, IT / Software / Systems , Mc Lean, Maryland
